Debian Security Advisory DSA 116-1 (cfs)

Summary
The remote host is missing an update to cfs announced via advisory DSA 116-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20116-1
Insight
Zorgon found several buffer overflows in cfsd, a daemon that pushes encryption services into the Unix(tm) file system. We are not yet sure if these overflows can successfully be exploited to gain root access to the machine running the CFS daemon. However, since cfsd can easily be forced to die, a malicious user can easily perform a denial of service attack to it. This problem has been fixed in version 1.3.3-8.1 for the stable Debian distribution and in version 1.4.1-5 for the testing and undtable distribution of Debian. We recommend that you upgrade your cfs package immediately.